CLAIMS 



1. A secure intermediation method performed by an intermediary positioned 
5 along a communication path between a first network node and a second network node, 

comprising: 

receiving a session request from the first network node, wherein the session 
request comprises a request to initiate secure communications between the first network 
node and the second network node; and 
10 in response to receiving the session request, establishing a first secure session 

between the intermediary and the first network node, establishing a second secure session 
between the intermediary and the second network node, and linking the first secure 
session with the second secure session to enable communication between the first and 
second network nodes. 

15 

2. The method of claim 1, wherein the first secure session and the second 
secure session are secure socket layer sessions. 

3. The method of claim 1, wherein the first network node is a client node and 
20 the second network node is a server node. 

4. The method of claim 1, wherein the session request is addressed to the 
intermediary. 
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5. The method of claim 1, wherein the session request is addressed to the 
second network node. 

5 6. The method of claim 1, wherein linking the first secure session with the 

second secure session includes receiving data from the first network node in the first 
secure session and sending the received data to the second network node in the second 
secure session. 

10 7. The method of claim 1, wherein linking the first secure session with the 

second secure session includes receiving data from the first network node in the first 
secure session, performing an intermediation service on the received data to create 
intermediated data, and sending the intermediated data to the second network node in the 
second secure session. 

15 

8. A secure intermediation method performed by an intermediary positioned 
along a communication path between a first network node and a second network node, 
comprising: 

receiving a session request from the first network node, wherein the session 
20 request comprises a request to initiate a secure session between the first network node 
and the second network node; and 

in response to receiving the session request, establishing a first session between 
the intermediary and one of the first and the second network nodes, wherein the first 
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session is a secure session, establishing a second session between the intermediary and 
the other of the first and second network nodes, and linking the first session with the 
second session to enable communication between the first and second network nodes. 

9. The method of claim 8, wherein the first session is a secure socket layer 
session. 

10. The method of claim 8, wherein the first network node is a client node and 
the second network node is a server node. 

11. The method of claim 8, wherein the session request is addressed to the 
intermediary. 

12. The method of claim 8, wherein the session request is addressed to the 
second network node. 

13. The method of claim 8, wherein the second session comprises 
communications over a wireless network. 

14. The method of claim 8, wherein the second session comprises 
communications over a virtual private network. 
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15. The method of claim 8, wherein linking the first session with the second 
session includes receiving data from the first network node in the second session and 
sending the received data to the second network node in the first session. 

5 16. The method of claim 8, wherein linking the secure session with the 

communications channel includes receiving data from the first network node in the 
second session, the method further comprising: 

performing an intermediation service on the received data to create intermediated 
data, and sending the intermediated data to the second network node in the first session. 

10 

17. A secure intermediation method performed by an intermediary positioned 
along a communication path between a client node and a server node, comprising: 

receiving a session request from the client node, wherein the session request is a 
request to initiate secure communications between the client node and the server node; 
1 5 in response to receiving the session request, establishing a secure session between 

the intermediary and the server; and 

after establishing the secure session, receiving data from the client node, and 
sending the received data to the server over the secure session. 

20 18. The method of claim 17, wherein the secure session is a secure socket 

layer session. 
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19. In a secure intermediation system, a method performed at a client node 
comprising: 

sending a session request addressed to a server node, wherein the session request 
comprises a request to initiate a secure socket layer session between the client node and 
the server node; 

receiving a certificate in response to the session request; 

determining that the certificate corresponds to an intermediary positioned along a 
communications path between the client node and the server node; and 

establishing a secure session between the client node and the intermediary. 

20. An intermediation system comprising: 

session request logic operative to detect a session request sent from the client 
node, wherein the session request comprises a request to initiate a secure session between 
the client node and the server node; 

session initiation logic operative to establish a first secure session with the server 
node, the session initiation logic being responsive to the detection of the session request 
by the session request logic; and 

linking logic operative to enable communication between the client node and the 
server node. 

21. The system of claim 20, wherein the session initiation logic is further 
operative to establish a second secure session with the client node, and wherein the 
linking logic is operative to link the first secure session with the second secure session. 
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22. The system of claim 21, wherein the first secure session is a secure socket 
layer session. 

23. A secure intermediation system, comprising: 
a network interface; 

a processor; and 

data storage, wherein the data storage stores instructions executable by the 
processor (i) to receive a session request from the client node, wherein the session request 
comprises a request to initiate secure communications between the client node and the 
server node; (ii) to establish a secure session between the intermediary and the server in 
response to receiving the session request; (iii) to receive data from the client node after 
establishing the secure session; and (iv) to send the received data to the server over the 
secure session. 
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